Information Regulator

Home/Tag:Information Regulator

Insights, news or developments related to the Information Regulator in South Africa, including updates on webinars or events held by them.

Notification of security compromise to the Information Regulator | Guideline and support

The information regulator published a Guideline on notification of security compromises to the information regulator in July 2020. The guideline explains the procedure responsible parties or information officers should follow to notify the regulator of a security compromise or data [...]

By |2025-04-23T13:35:59+02:00April 7th, 2025|Categories: Cybersecurity Law, POPI and Data Protection|Tags: , , , , , , |
Read More

PAIA section 32 report for public bodies | PAIA annual report

The information officer of every public body in South Africa must submit a PAIA section 32 report to the Information Regulator annually. Section 32 of PAIA makes it compulsory - a regulatory requirement. PAIA gives effect to section 32 [...]

By |2025-03-20T15:01:56+02:00March 18th, 2025|Categories: Access to Information|Tags: , , , |
Read More

PAIA section 83(4) report for private bodies | PAIA report

All private bodies must submit a PAIA section 83(4) report (PAIA report) to the information regulator according to a notice the regulator published. The regulator has requested private bodies to submit this report annually in terms of section 83(4) [...]

By |2025-03-20T15:03:16+02:00March 17th, 2025|Categories: Access to Information|Tags: , , , |
Read More

Information regulator annual performance plan for 2025 to 2026 APP

The information regulator has presented its draft annual performance plan (regulator APP) for 1 April 2025 to 31 March 2026. It has presented them in different formats to different audiences. For example, the regulator held a stakeholder engagement on 5 [...]

By |2025-03-26T11:52:16+02:00March 5th, 2025|Categories: Access to Information, POPI and Data Protection|Tags: , |
Read More

Information Regulator in South Africa

The Information Regulator was created by the Protection of Personal Information Act (POPI Act). POPI gives the Information Regulator teeth - it has extensive powers to investigate and fine responsible parties. Data subjects can complain to the Information Regulator [...]

By |2025-03-05T13:26:37+02:00March 5th, 2025|Categories: Access to Information, POPI and Data Protection|Tags: , , , , |
Read More

Department of Basic Education enforcement action | Consent

The Information Regulator issued an enforcement notice against the Department of Basic Education (DBE) on the issue of consent under POPIA on 6 November 2024. The DBE has a long-standing practice of publishing matric results in newspapers, but this practice [...]

By |2025-01-31T11:37:17+02:00January 8th, 2025|Categories: POPI and Data Protection|Tags: , , , , , |
Read More

Information Regulator aims to step up enforcement

The information regulator briefed the public and the media on 11 September 2024 on some enforcement activities over the last quarter (since 1 April 2024). The central theme was that the regulator has taken various enforcement actions but hasn't succeeded [...]

By |2024-10-25T06:42:39+02:00September 12th, 2024|Categories: Access to Information, POPI and Data Protection|Tags: , , |
Read More

State Security Agency (SSA) enforcement action | ANA expenditure

The Information Regulator issued an enforcement notice to the State Security Agency (SSA) regarding a PAIA record request. The SSA had refused to provide the information to the requester. This refusal prompted the Regulator to investigate and issue the SSA [...]

By |2024-09-11T14:17:33+02:00August 7th, 2024|Categories: Access to Information|Tags: , , , , , |
Read More

Guidance note on the processing of personal information of a voter by a political party and independent candidate

The information regulator issued a new guidance note on the processing of personal information of a voter by political parties and independent candidates as well as highlighting how to combat misinformation and disinformation in terms of the provisions of the [...]

By |2024-09-11T14:39:59+02:00May 16th, 2024|Categories: Access to Information, POPI and Data Protection|Tags: , , , , , , , |
Read More

IEC Security Compromise: a case study on notifying the regulator

With the general elections set to be held on 29 May 2024, the last thing South Africans want to hear are details of a security compromise at the IEC. On the other hand, the Information Regulator is in need [...]

By |2024-05-22T08:50:31+02:00April 2nd, 2024|Categories: POPI and Data Protection|Tags: , , , , , |
Read More

SAPS enforcement action | security compromise part 2

In less than 18 months, the information regulator has cracked down on SAPS security compromise. This investigation stems from a security compromise where sensitive details, including personal information, were leaked on WhatsApp. The leaked information reportedly included details related to [...]

By |2024-05-22T08:50:50+02:00March 29th, 2024|Categories: POPI and Data Protection|Tags: , , , |
Read More